CVE-2019-0367
published 2019-10-08CVE-2019-0367: SAP NetWeaver Process Integration (B2B Toolkit), before versions 1.0 and 2.0, does not perform necessary authorization checks for an authenticated user…
medium4.3CVSS 3.1
AVNACLPRLUINSUCNILAN
SAP NetWeaver Process Integration (B2B Toolkit), before versions 1.0 and 2.0, does not perform necessary authorization checks for an authenticated user, allowing the import of B2B table content that leads to Missing Authorization Check.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap | netweaver_process_integration | — | — |
| sap | netweaver_process_integration | — | — |
| sap_se | sap_netweaver_process_integration | < 1.0 | 1.0 |
| sap_se | sap_netweaver_process_integration | < 2.0 | 2.0 |